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AMENDMENTS TO THE CLAIMS 
This listing of claims replaces all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1. (Currently Amended) In a local server that receives data from one or more remote 
entities over a data transport protocol, a method of applying a cryptographically secure hash to packets 
from unverified remote entities for preventing denial of service attacks on lookup tables used to store 
state information for one or more remote entities, while maintaining the performance of the local 
server for packets from verified remote entities, the method comprising the acts of: 

(A) r eceiving a packet of data from a remote entity that includes connection 

identifier information; 

CB) h ashing at least a portion of the connection identifier information using a first 
hash functio n to generate a first hash, the first hash for determining if state information e xists 
for the remote entity in identifying an entry in a first table of verified remote entities , the entry 
containing state information for all packets comprising the first hash; and 

(C) determining if state information for the remote entity exists at the entry in the 
first table of verified remote entities ; 

(a) wherein if it is determined the state information for the remote entity 
does exist in the first table of verified remote entities, performing standard data 
transport protocol on the packet of data; and 

(b) providing program modules for performing the following when it is 
determined that [~|~i f|] the state information for the remote entity does not exist in the 
first table of verified remote entities[[,]]j. 

(i) hashing at least a portion of the connection identifier information 
using a second hash function that is more computationally intensive and more 
cryptographically secure than the first hash function, resulting in a second hash 
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which is less predictable than the first hash generated by the first hash function, 
the second hash identifying another entry for d e t e rmining if stat e information 



second entry containing state information for all packets comprising the second 
hash; and 

(ip determining if state information for the remote entity exists at 
the second entry in the second table of unverified remote entities ; 

(1) wherein if it is determined that the state information for 
the remote entity exists in the second table of unverified remote entities, 
comparing secret information provided within the packet of data with 
information previously supplied to the remote entity for determining if 
the remote entity can be verified such that state information can be 
moved to the first table of verified remote entities; and 

(2) wherein if it is determined that the state information for 
the remote entity does not exist in the second table of unverified remote 
entities; checking whether the local server is a listener that may accept 
the packet of data from the remote entity for determining if the state 
information for the remote entity should be created in the second table 
of unverified remote entities. 




-in a second table of unverified remote entitie s, the 



2. 



(Cancelled). 



3. (Currently Amended) The method of claim [[2]] 1, wherein the standard data transport 
protocol is transmission control protocol. 
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4. (Currently Amended) The method of claim 1, wherein if the state information for the 
remote entity exists in the second table of unverified remote entities, but the remote entity cannot be 
verified, the method further comprises the act of: 

checking if the packet includes a synchronization message for determining how to respond to 
the unverified remote entity. 

5. (Original) The method of the claim 4, wherein if the packet of data includes a 
synchronization message, the local server responds by either sending a synchronization- 
acknowledgement packet or by deleting the packet. 

6. (Currently Amended) The method of the claim 4, wherein if the packet of data does 
not include a synchronization message, the local server responds by one or more of the following: 
deleting the packet, retransmitting the original message to the remote entity or removing the state 
information from the second table of unverified remote entities. 

7. (Currently Amended) The method of claim 1, wherein the first hash function is also a 
cryptographically secured hash function. 

8. (Original) The method of claim 7, wherein the first and second hash functions are 
one of hardware based or software based. 

9. (Currently Amended) The method of claim 1, wherein if state information for the 
remote entity does not exist in either the first t able of verified remote entities or the second table of 
unverified remote entities, and wherein the server is a listener that may accept the package of data 
from the remote entity, the method further comprising the acts of: 

creating state information for the remote entity within the second table of unverified remote 
entities; and 
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sending a synchronization-acknowledgement packet that includes an initial sequence number 
to the remote entity. 

10. (Currently Amended) The method of claim 1, wherein if state information for the 
remote entity does not exist in either the first table of verified entities or the second table of unverified 
entities, and the server is not a listener that may accept the package of data from the remote entity, the 
method further comprises the act of: 

sending a reset command to the remote entity for indicating that the packet was not verifiable 
and needs to be resent. 

11. (Currently Amended) The method of claim 1, wherein the remote entity becomes 
verified by sharing a secret sent to the remote entity by the local server. 



Page 6 of 20 



Application No. 10/779,414 

Amendment "A" dated August 1, 2008 

Reply to Non-Final Office Action mailed May 1, 2008 



12. (Currently Amended) In a local server that receives data from one or more remote 
entities over a data transport protocol, a method of applying a cryptographically secure hash to packets 
from unverified remote entities for preventing denial of service attacks on lookup tables used to store 
state information for one or more remote entities, while maintaining the performance of the local 
server for packets from verified remote entities, the method comprising: 

an act of receiving a packet of data from a remote entity that includes connection identifier 
information; 

a step for determining if state information exists for the remote entity in a first table of verified 
remote entities; 

if the state information for the remote entity does not exist in the first table of verified remote 
entities, a step for determining if state information exists for the remote entity in a second table of 
unverified remote entities; 

if the state information exists in the second table of unverified remote entities, a step for 
determining if the remote entity can be verified such that state information can be moved to the first 
table of verified remote entities; 

if state information does not exist in the second table of unverified remote entities; a step for 
determining if state information for the remote entity should be created in the second table of 
unverified remote entities. 

13. (Currently Amended) The method of claim 12, wherein if the state information for the 
remote entity does exist in the first table of verified remote entities, standard data transport protocol 
processing is performed. 

14. (Original) The method of claim 13, wherein the standard data transport protocol is 
transmission control protocol. 
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15. (Currently Amended) The method of claim 12, wherein if the state information exists 
in the second table of unverified remote entities, but the remote entity cannot be verified, the method 
further comprises the act of: 

checking if the packet includes a synchronization message for determining how to respond to 
the unverified remote entity. 

16. (Original) The method of the claim 15, wherein if the packet of data includes a 
synchronization message, the local server responds by either sending a synchronization- 
acknowledgement packet or by deleting the packet. 

17. (Currently Amended) The method of the claim 15, wherein if the packet of data does 
not include a synchronization message, the local server responds by one or more of the following! 
deleting the packet, retransmitting the original message to the remote entity or removing the state 
information from the second table of unverified remote entities. 

18. (Currently Amended) The method of claim 12, wherein the step for determining if 
state information exists for the remote entity in the first table of verified remote entities includes the 
act of hashing at least a portion of the connection identifier information using a first hash function, 
and wherein the step for determining if state information exists for the remote entity in a second table 
of unverified remote entities includes the act of hashing at least a portion of the connection identifier 
information using a second hash function that is more computationally intensive and more 
cryptographically secure than the first hash function, resulting in a second hash which is less 
predictable than a first hash generated by the first hash function . 

19. (Original) The method of claim 18, wherein the first hash function is also a 
cryptographically secured hash function, and wherein the first and second hash functions are one of 
either hardware based or software based. 
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20. (Currently Amended) The method of claim 12, wherein if state information does not 
exist in either the first table of verified remote entities or the second table of unverified remote 
entities, and wherein the step for determining if state information for the remote entity should be 
created in the second t able of unverified remote entities includes the act of checking whether the local 
server is a listener that may accept the package of data from the remote entity, the method further 
comprising the acts of: 

creating state information for the remote entity within the second table of unverified remote 
entities; and 

sending a synchronization-acknowledgement packet that includes an initial sequence number 
to the remote entity. 



21. (Currently Amended) The method of claim 12, wherein if state information does not 
exist in either the first table of verified entities or the second table of unverified entities, the step for 
determining if state information for the remote entity should be created in the second table of 
unverified remote entities includes the act of checking whether the local server is a listener that may 
accept the package of data from the remote entity, and the server is not a listener that may accept the 
package of data from the remote entity, the method further comprising the act of: 

sending a reset command to the remote entity for indicating that the packet was not verifiable 
and needs to be resent. 
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22. (Currently Amended) For a local server that receives data from one or more remote 
entities over a data transport protocol, a computer program product comprising computer readable 
storage m edia carrying storing computer executable instructions that implement a method of applying 
a cryptographically secure hash to packets from unverified remote entities for preventing denial of 
service attacks on lookup tables used to store state information for one or more remote entities, while 
maintaining the performance of the local server for packets from verified remote entities, the method 
comprising the acts of: 

(A) r eceiving a packet of data from a remote entity that includes connection identifier 
information; 

(B) hashing at least a portion of the connection identifier information using a first hash 
functio n to generate a first hash, the first hash for d e termining if stat e information exists for 
th e remote entity in identifying an entry in a first table of verified remote entities , the entry 
containing state information for all packets comprising the first hash; and 

(C) determining if state information for the remote entity exists at the entry in the first 
table of verified remote entities ; 

(a) wherein if it is determined that the state information for the remote entity 
does exist in the first table of verified remote entities, performing standard data 
transport protocol on the packet of data; and 

(b) providing program modules for performing the following when it is 
determined that [|"i f|] the state information for the remote entity does not exist in the 
first table of verified remote entities^]]: 

{i} hashing at least a portion of the connection identifier information 
using a second hash function that is more computationally intensive and more 
cryptographically secure than the first hash function, resulting in a second hash 
which is less predictable than the first hash generated by the first hash function, 
the second hash identifying an entry for det e rmining if state information e xists 
for th e remot e entity in a second table of unverified remote entities , the second 
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entry containing state information for all packets comprising the second hash; 
and 

(ii) determining if state information for the remote entity exists at the 
second entry in the table of unverified remote entities ; 

(1) wherein if it is determined that the state information for the 
remote entity exists in the second table of unverified remote entities, 
comparing secret information provided within the packet of data with 
information previously supplied to the remote entity for determining if 
the remote entity can be verified such that state information can be 
moved to the first table of verified remote entities; and 

(2) wherein i f it is determined that the state information for the 
remote entity does not exist in the second table of unverified remote 
entities; checking whether the local server is a listener that may accept 
the packet of data from the remote entity for determining if the state 
information for the remote entity should be created in the second table 
of unverified remote entities. 

23. (Currently Amended) The computer program product of claim 22, wherein if the state 
information for the gemote entity exists in the second table of unverified remote entities, but the 
remote entity cannot be verified, the method further comprises the act of: 

checking if the packet includes a synchronization message for determining how to respond to 
the unverified remote entity. 

24. (Original) The computer program product of the claim 23, wherein if the packet of 
data includes a synchronization message, the local server responds by either sending a 
synchronization-acknowledgement packet or by deleting the packet. 
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25. (Currently Amended) The computer program product of the claim 23, wherein if the 
packet of data does not include a synchronization message, the local server responds by one or more 
of the following: deleting the packet, retransmitting the original message to the remote entity or 
removing the state information from the second table of unverified remote entities. 

26. (Original) The computer program product of claim 22, wherein the first hash 
function is also a cryptographically secured hash function, and wherein the first and second hash 
functions are one of hardware based or software based. 

27. (Currently Amended) The computer program product of claim 22, wherein if state 
information for the remote entity does not exist in either the first table of verified remote entities or 
the second table of unverified remote entities, and wherein the server is a listener that may accept the 
package of data from the remote entity, the method further comprising the acts of: 

creating state information for the remote entity within the second table of unverified remote 
entities; and 

sending a synchronization-acknowledgement packet that includes an initial sequence number 
to the remote entity. 

28. (Currently Amended) The computer program product of claim 22, wherein if state 
information for the remote entity does not exist in either the first table of verified remote entities or 
the second table of unverified remote entities, and the server is not a listener that may accept the 
package of data from the remote entity, the method further comprises the act of: 

sending a reset command to the remote entity for indicating that the packet was not verifiable 
and needs to be resent. 
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29. (Currently Amended) For a local server that receives data from one or more remote 
entities over a data transport protocol, a computer program product comprising computer readable 
storage m edia storing carrving computer executable instructions that implement a method of applying 
a cryptographically secure hash to packets from unverified remote entities for preventing denial of 
service attacks on lookup tables used to store state information for one or more remote entities, while 
maintaining the performance of the local server for packets from verified remote entities, the method 
comprising: 

an act of receiving a packet of data from a remote entity that includes connection identifier 
information; 

a step for determining if state information exists for the remote entity in a first table of verified 
remote entities; 

if the state information for the remote entity does not exist in the first table of verified remote 
entities, a step for determining if state information exists for the remote entity in a second table of 
unverified remote entities; 

if the state information exists in the second t able of unverified remote entities, a step for 
determining if the remote entity can be verified such that state information can be moved to the first 
table of verified remote entities; 

if state information does not exist in the second table of unverified remote entities; a step for 
determining if state information for the remote entity should be created in the second table of 
unverified remote entities. 

30. (Currently Amended) The computer program product of claim 29, wherein if the state 
information exists in the second table of unverified remote entities, but the remote entity cannot be 
verified, the method further comprises the act of: 

checking if the packet includes a synchronization message for determining how to respond to 
the unverified remote entity. 
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3 1 . (Original) The computer program product of the claim 30, wherein if the packet of 
data includes a synchronization message, the local server responds by either sending a 
synchronization-acknowledgement packet or by deleting the packet. 

32. (Currently Amended) The computer program product of the claim 30, wherein if the 
packet of data does not include a synchronization message, the local server responds by one or more 
of the following: deleting the packet, retransmitting the original message to the remote entity or 
removing the state information from the second table of unverified remote entities. 

33. (Currently Amended) The computer program product of claim 29, wherein the step for 
determining if state information exists for the remote entity in the first table of verified remote entities 
includes the act of hashing at least a portion of the connection identifier information using a first hash 
function, and wherein the step for determining if state information exists for the remote entity in a 
second table of unverified remote entities includes the act of hashing at least a portion of the 
connection identifier information using a second hash function that is more computationally intensive 
and more crypto graphically secure than the first hash function, resulting in a second hash which is less 
predictable than a hash generated by the first hash function . 

34. (Original) The computer program product of claim 33, wherein the first hash 
function is also a cryptographically secured hash function, and wherein the first and second hash 
functions are one of either hardware based or software based. 
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35. (Currently Amended) The computer program product of claim 29, wherein if state 
information does not exist in either the first table of verified remote entities or the second table of 
unverified remote entities, and wherein the step for determining if state information for the remote 
entity should be created in the second table of unverified remote entities includes the act of checking 
whether the local server is a listener that may accept the package of data from the remote entity, the 
method further comprising the acts of: 

creating state information for the remote entity within the second table of unverified remote 
entities; and 

sending a synchronization-acknowledgement packet that includes an initial sequence number 
to the remote entity. 

36. (Currently Amended) The computer program product of claim 29, wherein if state 
information does not exist in either the first table of verified remote entities or the second table of 
unverified remote entities, the step for determining if state information for the remote entity should be 
created in the second table of unverified remote entities includes the act of checking whether the local 
server is a listener that may accept the package of data from the remote entity, and wherein the server 
is not a listener that may accept the package of data from the remote entity, the method further 
comprises the act of: 

sending a reset command to the remote entity for indicating that the packet was not verifiable 
and needs to be resent. 

37. (Original) The computer program product of claim 29, wherein the remote entity 
becomes verified by sharing a secret sent to the remote entity by the local server. 
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